CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

53 matches found

Chromium: CVE-2026-11108 Inappropriate implementation in NFC

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS5.4AI score0.00071EPSS

Exploits0

Microsoft CVE•added 2026/06/05 2:0 p.m.•6 views

Chromium: CVE-2026-11043 Out of bounds write in ANGLE

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

9.6CVSS5.4AI score0.00092EPSS

Exploits0

Microsoft CVE•added 2026/05/29 11:21 p.m.•10 views

Chromium: CVE-2026-10022 Type Confusion in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

7.5CVSS5.8AI score0.00021EPSS

Exploits0

Microsoft CVE•added 2026/05/29 11:20 p.m.•10 views

Chromium: CVE-2026-9965 Out of bounds write in ANGLE

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS5.8AI score0.00109EPSS

Exploits0

Microsoft CVE•added 2026/04/02 2:0 p.m.•3 views

Chromium: CVE-2026-5292 Out of bounds read in WebCodecs

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS5.8AI score0.00046EPSS

Exploits0

CISA KEV Catalog•added 2025/12/12 12:0 a.m.•12 views

Google Chromium Out of Bounds Memory Access Vulnerability

Google Chromium contains an out of bounds memory access vulnerability in ANGLE that could allow a remote attacker to perform out of bounds memory access via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google...

8.8CVSS6.7AI score0.00265EPSS

In wildExploits10

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2022-33554

Malicious code in bioql PyPI...

7.5CVSS8.1AI score0.0182EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-25942

Malicious code in bioql PyPI...

8.3CVSS8AI score0.00607EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2022-35398

Malicious code in bioql PyPI...

8.3CVSS8AI score0.01564EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-2459

Malicious code in bioql PyPI...

7.4CVSS6.4AI score0.00263EPSS

Exploits1References1

Microsoft CVE•added 2025/09/19 7:0 a.m.•7 views

Chromium: CVE-2025-10502 Heap buffer overflow in ANGLE

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS6.4AI score0.00148EPSS

Exploits0

CVE•added 2025/07/02 5:18 p.m.•61 views

CVE-2025-49713

CVE-2025-49713 is a Microsoft Edge (Chromium-based) remote code execution vulnerability through a type confusion in Edge. Affected product: Edge (Chromium-based) browser. Cause: resource access using incompatible type leading to code execution over a network. Impact per CVSS: high severity, user ...

8.8CVSS6.8AI score0.02957EPSS

Exploits0References1Affected Software1

Microsoft CVE•added 2025/04/03 5:47 p.m.•20 views

Chromium: CVE-2025-3072 Inappropriate implementation in Custom Tabs

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

5.4CVSS6.9AI score0.00071EPSS

Exploits0

The Hacker News•added 2025/03/10 2:47 p.m.•39 views

Researchers Expose New Polymorphic Attack That Clones Browser Extensions to Steal Credentials

Cybersecurity researchers have demonstrated a novel technique that allows a malicious web browser extension to impersonate any installed add-on. "The polymorphic extensions create a pixel perfect replica of the target's icon, HTML popup, workflows and even temporarily disables the legitimate...

6.9AI score

Exploits0

Cvelist•added 2025/02/14 11:16 p.m.•10 views

CVE-2025-21401 Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

...

4.5CVSS0.0046EPSS

Exploits0References1

Vulnrichment•added 2025/02/11 11:10 a.m.•7 views

CVE-2025-0862 SuperSaaS – online appointment scheduling <= 2.1.12 - Authenticated (Contributor+) Stored Cross-Site Scripting via after Parameter

The SuperSaaS – online appointment scheduling plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘after’ parameter in all versions up to, and including, 2.1.12 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, wi...

4.9CVSS4.8AI score0.00117EPSS

Exploits0References4

Cvelist•added 2025/02/11 11:10 a.m.•10 views

CVE-2025-0862 SuperSaaS – online appointment scheduling <= 2.1.12 - Authenticated (Contributor+) Stored Cross-Site Scripting via after Parameter

4.9CVSS0.00117EPSS

Exploits0References4

CVE•added 2025/02/11 11:10 a.m.•53 views

CVE-2025-0862

CVE-2025-0862 describes a stored cross-site scripting flaw in the WordPress plugin SuperSaaS – online appointment scheduling . Affected versions up to and including 2.1.12 allow an authenticated attacker with Contributor+ privileges to inject arbitrary scripts via the after parameter, which execu...

4.9CVSS4.7AI score0.00117EPSS

Exploits0References4

Vulnrichment•added 2025/02/06 10:41 p.m.•12 views

CVE-2025-21408 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

...

8.8CVSS7AI score0.00362EPSS

Exploits0References1

Microsoft CVE•added 2025/02/06 8:0 a.m.•13 views

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

...

8.8CVSS7.3AI score0.00362EPSS

Exploits0